A hacking group known as XENOTIME, which shut down an industrial plant in the Middle East last year, is expanding its targets and could launch destructive attacks on the safety components of industrial control systems, the cybersecurity firm Dragos reports in a blog post.